US10505758B2 - Systems and methods for sharing network interfaces between containers in an embedded computing device - Google Patents

Systems and methods for sharing network interfaces between containers in an embedded computing device Download PDF

Info

Publication number
US10505758B2
US10505758B2 US15/642,476 US201715642476A US10505758B2 US 10505758 B2 US10505758 B2 US 10505758B2 US 201715642476 A US201715642476 A US 201715642476A US 10505758 B2 US10505758 B2 US 10505758B2
Authority
US
United States
Prior art keywords
network interface
operating system
shared
external network
data packets
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active, expires
Application number
US15/642,476
Other versions
US20190013963A1 (en
Inventor
Aleksandar Papo
Nazih Almalki
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to US15/642,476 priority Critical patent/US10505758B2/en
Assigned to HUAWEI TECHNOLOGIES CO., LTD. reassignment HUAWEI TECHNOLOGIES CO., LTD. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: Papo, Aleksandar, ALMALKI, NAZIH
Priority to PCT/CN2017/106894 priority patent/WO2019006912A1/en
Priority to CN201780093446.5A priority patent/CN110945479B/en
Publication of US20190013963A1 publication Critical patent/US20190013963A1/en
Application granted granted Critical
Publication of US10505758B2 publication Critical patent/US10505758B2/en
Active legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4604LAN interconnection over a backbone network, e.g. Internet, Frame Relay
    • H04L12/462LAN interconnection over a bridge based backbone
    • H04L12/4625Single bridge functionality, e.g. connection of two networks over a single bridge
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/50Allocation of resources, e.g. of the central processing unit [CPU]
    • G06F9/5061Partitioning or combining of resources
    • G06F9/5077Logical partitioning of resources; Management or configuration of virtualized resources
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/544Buffers; Shared memory; Pipes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication

Definitions

  • This application relates to sharing network interfaces, and in particular to sharing network interfaces between containers on an embedded computing system.
  • Embedded computing devices are computing devices with specific functions which operate within a larger mechanical or electrical system. Embedded devices are used extensively in consumer, commercial, automotive, industrial and healthcare markets. Generally, the operating system of an embedded device might only run applications which help the embedded device to accomplish a specific task.
  • embedded devices examples include appliances (e.g. dishwashers), banking Automated Teller Machines (ATMs), routers, Point-of-Sale (POS) terminals, and mobile devices (e.g. mobile phones).
  • appliances e.g. dishwashers
  • ATMs banking Automated Teller Machines
  • POS Point-of-Sale
  • mobile devices e.g. mobile phones.
  • Some embedded devices can connect to the internet or other computing devices via a network interface, and are colloquially referred to as “smart” devices.
  • Embedded devices typically run an operating system (OS) that manages hardware and applications. Examples of common operating systems include Unix, Android, Linux, iOS, OS X, and Ubuntu. A typical operating system allocates memory to different processes. An operating system can segregate virtual memory into user space and kernel space.
  • the kernel of an operating system is the central core of the operating system and houses core programs. The kernel space is typically reserved for specific operations associated with the kernel. Application programs typically operate in user space.
  • Different operating systems may be more suitable for different purposes. For example, for a device with limited processing and storage capabilities, an operating system with a smaller footprint may be more suitable, but may offer reduced functionality and driver support. Operating systems with a larger footprint (e.g. Windows) may be more suitable for computing devices with increased processing and storage capabilities.
  • Windows e.g. Windows
  • Some operating systems allow for multiple virtualized user space instances (referred to herein as “containers”). Separate containers can be isolated from one another, with the kernel providing resource-management features to limit the impact of one container's activities on other containers. Different operating systems can run in separate containers.
  • a smartphone may run a first operating system in a first container and a second operating system in a second container.
  • the first operating system may be responsible for work-related applications.
  • the second operating system may be responsible for personal applications.
  • the use of segregated containers may be desirable when applications and data are intended to be kept separate. In this example, it is desirable for confidential work-related data and applications to be kept separate from the personal applications and personal data of a user.
  • processing power and storage may be limited on an embedded device, it might not be desirable to run multiple virtualized operating systems which have a relatively large footprint (i.e. relatively high computing resource requirements). For example, running instances of both Android and iOS might not be desirable on an embedded computing system with limited resources.
  • an operating system running in a first container supports functionality which is not supported by a second operating system.
  • a first operating system may support network connectivity via a network interface
  • a second, less resource-intensive operating system running on the same device might not provide network connectivity. It would be desirable to share the network interface of the first operating system with the second operating system.
  • a method of sharing a network interface between virtualized operating systems in an embedded device comprising: providing, by a host operating system running on the embedded device, a network bridge; in a first operating system running in a first container managed by the host operating system, connecting a first shared network interface with the network bridge; in a second operating system running in a second container managed by the host operating system, connecting a second shared network interface with the network bridge; linking, by a first control client in the first operating system, a first external network interface to the first shared network interface; and sharing the first external network interface with the second operating system via the network bridge.
  • the first control client may comprise an Internet Protocol (IP) table configured to route packets between the first external network interface and the second shared network interface.
  • IP Internet Protocol
  • the method may further comprise: linking, by a second control client in the second operating system, a second external network interface to the first shared network interface; and sharing the second external network interface with the first operating system via the network bridge.
  • the method may further comprise: in a third operating system running in a third container managed by the host operating system, connecting a third shared network interface with the network bridge; and sharing the first external network interface with the third operating system via the network bridge.
  • the method may further comprise: in a third operating system running in a third container manager by the host operating system, connecting a third shared network interface with the network bridge; sharing the first external network interface with the third operating system via the network bridge; and sharing the second external network interface with the third operating system via the network bridge.
  • sharing the first external network interface with the second operating system may comprise: sharing the first external network interface with a first number of applications running in the second operating system, wherein the first number of applications is less than a total number of applications running in the second operating system.
  • the first operating system may include a driver for the first external network interface
  • the second operating system may lack the driver for the first external network interface
  • the first external network interface may be one of a hardware-based network interface and a virtual network interface.
  • the second external network interface may be one of a hardware-based network interface and a virtual network interface.
  • the method may further comprise notifying the second operating system that the first external network interface is available for sharing with the second operating system.
  • an embedded device comprising: a processor; a memory containing computer-readable instructions for execution by said processor, said instructions, when executed by said processor, causing the processor to: provide, by a host operating system, a network bridge; connect, by a first operating system running in a first container managed by the host operating system, a first shared network interface with the network bridge; connect, by a second operating system running in a second container managed by the host operating system, a second shared network interface with the network bridge; link, by a first control client in the first operating system, a first external network interface to the first shared network interface; and share the first external network interface with the second operating system via the network bridge.
  • the first control client may comprise an Internet Protocol (IP) table configured to route packets between the first external network interface and the second shared network interface.
  • IP Internet Protocol
  • the memory may further contain instructions to: link, by a second control client in the second operating system, a second external network interface to the first shared network interface; and share the second external network interface with the first operating system via the network bridge.
  • the memory may further contain instructions to: in a third operating system running in a third container managed by the host operating system, connect a third shared network interface with the network bridge; and share the first external network interface with the third operating system via the network bridge.
  • the memory may further contain instructions to: in a third operating system running in a third container managed by the host operating system, connect a third shared network interface with the network bridge; share the first external network interface with the third operating system via the network bridge; and share the second external network interface with the third operating system via the network bridge.
  • sharing the first external network interface with the second operating system may comprise sharing the first external network interface with a first number of applications running in the second operating system, and the first number of applications may be less than a total number of applications running in the second operating system.
  • the first operating system may include a driver for the first external network interface
  • the second operating system may lack the driver for the first external network interface
  • the first external network interface may be one of a hardware-based network interface and a virtual network interface.
  • the memory may further contain instructions to notify the second operating system that the first external network interface is available for sharing with the second operating system.
  • FIG. 1 is a block diagram depicting components of an example embedded computing device
  • FIG. 2 is depicts a simplified arrangement of virtual memory allocation in an embedded computing device
  • FIG. 3 depicts an example configuration of virtual memory in an embedded computing device which supports multiple user space instances
  • FIG. 4 depicts an example embodiment of an embedded computing device running a host operating system and two operating systems in separate containers;
  • FIG. 5 is a block diagram depicting an example embodiment of an embedded device having multiple network interfaces
  • FIG. 6A is a block diagram depicting an example embodiment of an embedded device having two operating systems with multiple network interfaces
  • FIG. 6B is a block diagram of an example embodiment of an embedded device having a host OS, a first OS running in a first container, and a second OS running in a second container;
  • FIG. 6C is a block diagram of an example embodiment of an embedded device having a host OS, a first OS running in a first container, and a second OS running in a second container;
  • FIG. 7 is a block diagram of an example embedded device which has a host OS, a first OS, a second OS, and a third OS;
  • FIG. 8 is a block diagram of an example embedded device configured to share a virtual network interface
  • FIG. 9A is a depiction of the contents of an example IP tables for a first control client
  • FIG. 9B is a depiction of the contents of an example IP table for a second control client
  • FIG. 10 is a block diagram of an example depiction of communication between containers on an embedded device.
  • FIG. 11 is a flow chart of an example method of sharing a network interface between virtualized operating systems in an embedded device.
  • FIG. 1 is a block diagram of components of an example embedded computing device 100 .
  • Embedded computing device 100 may include one or more processors 102 , memory 104 , storage 106 , I/O devices 108 , and network interface 110 , and combinations thereof.
  • Processor 102 is any suitable type of processor, such as a processor implementing an ARM or x86 instruction set.
  • processor 102 is a graphics processing unit (GPU).
  • Memory 104 is any suitable type of random access memory accessible by processor 102 .
  • Storage 106 may be, for example, one or more modules of memory, hard drives, or other persistent computer storage devices.
  • I/O devices 108 include, for example, user interface devices such as a screen, including capacitive or other touch-sensitive screens capable of displaying rendered images as output and receiving input in the form of touches.
  • I/O devices 108 additionally or alternatively include one or more of speakers, microphones, sensors such as accelerometers and global positioning system (GPS) receivers, keypads, or the like.
  • I/O devices 108 include ports for connecting embedded computing device 100 to other computing devices.
  • I/O devices 108 include a universal serial bus (USB) controller for connection to peripherals or to host computing devices.
  • USB universal serial bus
  • Network interface 110 is capable of connecting embedded computing device 100 to one or more communication networks.
  • network interface 110 includes one or more of wired interfaces (e.g. wired ethernet) and wireless radios, such as WiFi, Bluetooth, or cellular (e.g. GPRS, GSM, EDGE, CDMA, LTE, or the like).
  • wired interfaces e.g. wired ethernet
  • wireless radios such as WiFi, Bluetooth, or cellular (e.g. GPRS, GSM, EDGE, CDMA, LTE, or the like).
  • Network interface 110 can also be used to establish virtual network interfaces, such as a Virtual Private Network (VPN).
  • VPN Virtual Private Network
  • Embedded computing device 100 operates under control of software programs. Computer-readable instructions are stored in storage 106 , and executed by processor 102 in memory 104 . Software executing on embedded computing device 100 may include, for example, an operating system and application software 122 .
  • FIG. 2 depicts a simplified arrangement of virtual memory allocation in an example embedded computing device 100 .
  • an operating system includes a kernel 121 that is the central core of the operating system.
  • An operating system can segregate virtual memory 200 into kernel space 210 and user space 250 .
  • the kernel space 210 is typically reserved for specific operations associated with the kernel, referred to herein as system programs 220 .
  • the system programs 220 may handle system start-up processes and input/output requests from application software by translating requests into data-processing instructions for the processor 102 .
  • the kernel executes system programs in kernel space 210 .
  • application software 122 runs in user space 210 and user activities occur in user space 210 .
  • FIG. 3 depicts an example configuration of virtual memory 200 in an embedded computing device 100 which supports multiple containers.
  • virtual memory 200 includes two containers 310 , 350 . Separate containers can be isolated from one another, with the kernel 121 providing resource-management features to limit the impact of one container's activities on other containers.
  • the memory allocated to container 310 is separate from memory allocated to container 350 .
  • Each container 310 , 350 may execute an instance of an operating system.
  • FIG. 4 depicts an example embodiment in which the host (or native) operating system running on embedded computing device 100 is Linux.
  • the native operating system may be a proprietary operating system which is based on the Linux kernel 421 .
  • a proprietary operating system may be desirable for embedded computing device 100 because the proprietary operating system may be stripped of features which are deemed unnecessary or undesirable.
  • the proprietary operating system may also provide a manufacturer of embedded computing device 100 with a base level of control over the software applications which can be executed on embedded computing device 100 .
  • the system programs 420 in the proprietary Linux kernel 421 include support for multiple virtualized user space instances.
  • user space 220 contains a first container 310 and a second container 350 .
  • first container 310 is running a first operating system 320 (e.g. Tizen).
  • second container 350 is running a second operating system 360 (e.g. a generic version of the Android OS).
  • first operating system 320 e.g. Tizen
  • second operating system 360 e.g. a generic version of the Android OS.
  • FIG. 4 depicts two different operating systems running in first container 310 and second container 350
  • the present application also contemplates embodiments in which two different instances of the same operating system are running in containers 310 , 350 .
  • two separate instances of Android may be running in containers 310 , 350 .
  • a process includes software applications, underlying processes, and any combination thereof.
  • processes 330 are executing in container 310
  • processes 370 are executing in container 350 .
  • first operating system 320 and second operating system 360 may also be considered to be processes executing in containers 310 and 350 , respectively.
  • Processes 330 may communicate with first OS 320 .
  • processes 330 may make use of drivers and/or services 325 which are present in the kernel 321 of first OS 320 .
  • Processes 370 may communicate with second OS 360 , and in particular may make use of drivers and/or services 365 which are present in the kernel 361 of second OS 360 .
  • Inter-container communication Communication between containers 310 , 350 (referred to herein as inter-container communication) is typically highly restricted. Reasons for such restrictions in communication may relate to security or business considerations. For example, if embedded computing device 100 is a smartphone distributed by an employer, container 310 may run an operating system intended to be used for work purposes, whereas container 350 may run an operating system intended to be used for personal use by the user. In this example context, and many other contexts, it is desirable to segregate the degree to which containers are able to interact.
  • the kernel 361 of second OS 360 might not provide support for certain network interfaces. That is, drivers/services 365 might not include support for one or more of, e.g., wired ethernet, WiFi (IEEE 802.11a/b/g/n/ac), Bluetooth, or cellular (e.g. GPRS, GSM, EDGE, CDMA, LTE) connections.
  • First OS 320 may provide support for one or more network interfaces not supported by second OS 360 . That is, the drivers/services 325 in kernel 321 of first OS 320 may support one or more of the above-noted network interfaces which is not supported by second OS 360 .
  • network interfaces further include virtual network interfaces (e.g. Virtual Private Network (VPN) connections).
  • VPN Virtual Private Network
  • embedded computing device 100 is configured to share one or more network interfaces with one or more containers 310 , 350 .
  • first OS 320 running in container 310 can communicate with container 350 to share a network interface (e.g. a WiFi network interface) with second OS 360 in container 350 .
  • a network interface e.g. a WiFi network interface
  • second OS 360 running in container 350 can communicate via the WiFi network interface in spite of the WiFi network interface not being natively supported by the kernel 361 of second OS 360 .
  • Sharing network interfaces between containers may result in numerous benefits, including more efficient use of storage space on embedded device 100 . Given that some embedded devices 100 may have limited storage and processing capabilities, the efficient use of storage space and processing capabilities may be an important consideration.
  • a first operating system which provides broad support for various network interfaces may be running in a first container on embedded device 100 .
  • One or more other operating systems may be running in one or more other containers on embedded device 100 .
  • the other operating systems might not include drivers for a given type of network interface. Aside from lacking drivers for the given type of network interface, the other operating systems may be suitable for performing specific tasks on embedded device 100 , and may require less memory and storage on embedded device 100 relative to the first operating system. It may be possible to run the other operating systems in separate containers on embedded device 100 in addition to the first operating system, whereas embedded device 100 might not have sufficient storage and processing capabilities to run multiple instances of the first operating system in separate containers.
  • the increased driver support provided by the first operating system can be leveraged to provide support for network interfaces to other operating systems that do not include drivers for the network interfaces.
  • the operating system which has control over the network interface may share the network interface with another operating system running in a separate container on embedded device 100 . In some embodiments, the operating system which has control over the network interface may share the network interface with two or more other operating systems running in respective separate containers on embedded device 100 .
  • an operating system with access to a first network shares access to the first network with a second operating system that does not have access to or is not capable of interfacing with the first network.
  • the second operating system might not have driver support for the network interface.
  • the second operating system has access to a second network and shares access to the second network with the first operating system.
  • FIG. 5 is a block diagram of an example embodiment of an embedded device having a shared network interface between a host operating system and a first operating system.
  • host operating system 510 is the core operating system of the embedded device.
  • host operating system 510 is a proprietary Linux operating system.
  • the host operating system 510 provides relatively minimal functionality beyond the operations necessary to execute one or more operating systems.
  • Host operating system 510 may provide access to system programs 420 from the proprietary Linux kernel 421 described above.
  • Host operating system 510 supports multiple containers. In the example embodiment depicted in FIG. 5 , only one container is running with an instance of a first operating system 530 .
  • first operating system 530 is Android OS 360 and includes driver support for one or more network interfaces 520 .
  • Host operating system 510 is operable to create a shared network interface 536 .
  • Shared network interface 536 allows for communication of network data packets between the host OS 510 and first OS 530 .
  • embedded computing device 100 also includes an external network interface 534 .
  • External network interface 534 may be used to communicate data packets between the first OS 530 and a network or device external to embedded computing device 100 .
  • first operating system 530 is operable to communicate with external network interface 534 .
  • first OS 530 includes driver support for the external network interface 534 .
  • the external network interface 534 may be a cellular network interface (e.g. LTE).
  • the external network interface 534 may be any of a wired or wireless local area network (LAN) (e.g. 100-base T ethernet, Gigabit ethernet, 802.11a/b/g/n/ac wireless LAN, Bluetooth, or cellular including GPRS, GSM, EDGE, CDMA, and LTE).
  • LAN local area network
  • the external network interface 534 is a virtual network interface (e.g. a Virtual Private Network (VPN) interface).
  • VPN Virtual Private Network
  • first OS 530 includes control client 531 .
  • Control client 531 may be implemented as software, hardware, or a combination of software and hardware.
  • Control client 531 is a module which controls communication between external network interface 534 and shared network interface 536 .
  • control client 531 routes data packets received at external network interface 534 to shared network interface 536 .
  • control client 531 routes data packets received at shared network interface 536 to external network interface 534 .
  • External network interface 534 communicates data packets in accordance with various communication protocols (e.g. TCP/IP).
  • Shared network interface 536 is configured to communicate data packets to network bridge 590 , which may forward data packets to other shared network interfaces in other containers, as described below.
  • network bridge 590 is provided by host OS 510 .
  • each shared network interface is visible to host OS 510 and network bridge 590 .
  • control client 531 uses an Internet Protocol (IP) table 532 to coordinate the routing of data packets between external network interface 534 and shared network interface 536 .
  • IP tables contain a list of one or more rules which are used to route data packets from one network interface to another network interface. IP tables are supported by many operating systems, including, for example, Linux and Android.
  • an IP table 532 may define rules for incoming packets. For example, an IP table 532 may define a rule that some or all incoming data packets for external network interface 534 be forwarded to shared network interface 536 .
  • An IP table 532 may also define rules for outgoing data packets from a network interface. For example, an IP table 532 may define a rule that some or all outgoing data packets from shared network interface 536 be forwarded to external network interface 534 .
  • FIG. 6A is a block diagram of an example embodiment of an embedded device having a host OS 510 , a first OS 530 running in a first container, and a second OS 550 running in a second container.
  • Each of external network interface 534 , shared network interface 536 , control client 531 , and IP table 532 may function in a manner similar to that described above in relation to FIG. 5 .
  • Second OS 550 includes shared network interface 556 , control client 551 , and IP table 552 .
  • second OS 550 does not have the capability to directly make use of external network interface 534 .
  • second OS 550 might not have driver support for the external network interface 534 .
  • second OS 550 would be unable to make use of external network interface 534 in spite of external network interface 534 being a component in embedded device 100 .
  • each of shared network interface 536 and shared network interface 556 is connected to network bridge 590 .
  • Network bridge 590 is provided by host OS 510 .
  • Network bridge 590 provides a path for routing data packets between second OS 550 and first OS 530 via host OS 510 .
  • shared interface 556 is not visible to first OS 530 .
  • shared interface 536 and external network interface 534 are not visible to second OS 550 because the first OS 530 and second OS 550 are in separate containers.
  • Network bridge 590 is able to detect and communicate with each of external network interface 534 , shared network interface 536 , and shared network interface 556 .
  • first OS 530 communicates the availability of one or more of external network interface 534 and shared network interface 536 to second OS 550 by way of inter-OS communication 580 .
  • an application e.g. a bar code scanning application
  • second OS 550 When external network interface 534 is shared with second OS 550 , data packets from the bar code scanning application can be routed to shared network interface 556 .
  • Control client 551 controls the routing of the data packets by way of IP table 552 , and the data packets are then sent from shared interface 556 , to network bridge 590 , to shared interface 536 , and then to external network interface 534 .
  • the data packets can then be transmitted via external network interface 534 .
  • control client 531 controls the routing of data packets from shared interface 536 to external network interface 534 .
  • the data packets from the bar code scanning application in second OS 550 running in a second container can be routed internally from the second OS 550 , to the bridge 590 , and then to the first OS 530 , where the external network interface 534 will ultimately send the data packets to the intended destination.
  • the bar code scanning application in second OS 550 may also receive data packets via external network interface 534 .
  • Data packets received at external network interface 534 are routed using rules from IP table 532 to shared interface 536 , then to network bridge 590 , and then shared interface 556 in second OS 550 , which then delivers the data packets to the bar code scanning application running in second OS 550 .
  • the bar code scanning application in second OS 550 (which does not have access to external network interface 534 ) is able to send and receive data packets by routing packets from the second container to the first container and ultimately to external network interface 534 .
  • control client 531 shares the external network interface 534 with the second OS 550 at an OS-level. Sharing the external network interface 534 at an OS-level provides access to the external network interface 534 to all applications running in second OS 550 .
  • An OS-level sharing policy may be implemented by suitably configured control clients 531 and 551 .
  • IP table 552 can be configured to forward data packets from every application to shared interface 556 and then to network bridge 590 .
  • IP table 532 can be configured to forward all data packets received at shared interface 536 to external network interface 534 . This would result in all outgoing network traffic from second OS 550 being routed to external network interface 534 .
  • control clients 531 and 551 restrict the sharing of external network interface 534 on an application-by-application basis.
  • second OS 550 can provide authorization to particular applications to make use of external network interface 534 when shared. This may be useful in situations where network access for some applications is viewed as being more important or legitimate than network access for other applications.
  • Application authorization may be controlled by control client 551 .
  • control client 551 may receive packet data transmission requests from various applications running in second OS 550 .
  • Control client 551 can be configured to block the request for packet data transmission based on the application requesting network data transmission.
  • Control client 551 can also be configured to allow the request for packet data transmission based on the application requesting transmission being authorized.
  • control client 551 maintains a list of applications which are blocked from transmitting packet data to shared interface 556 (a “black list”) while allowing any other application by default. In some embodiments, control client 551 maintains a list of applications which are authorized to transmit packet data to shared interface 556 (a “white list”) while blocking any other application not in the list by default.
  • white list may be desirable from a security perspective because an embedded device 100 which has been hacked or otherwise compromised still might not be able to transmit packet data from other illegitimate applications if those other applications are not contained in the white list.
  • first OS 530 is running in a container used for work purposes on an embedded device 100 provided by an employer to an employee.
  • Second OS 550 is running in a container intended for personal use.
  • an email application running in second OS 550 may be authorized to make use of external network interface 534
  • a social media application e.g. Facebook
  • the external network interface 534 may be shared with less than all of the applications running on second OS 550 .
  • FIG. 6B is a block diagram of an example embodiment of an embedded device having a host OS 510 , a first OS 530 running in a first container, and a second OS 550 running in a second container.
  • the embedded device 100 has several different external network interfaces 534 . As depicted, the embedded device 100 has a WiFi interface 534 a , a cellular LTE interface 534 b , and a Bluetooth interface 534 c .
  • First OS 530 may include driver support for one or more of external network interfaces 534 a , 534 b , 534 c.
  • control client 531 enables the sharing of one, all, or any combination of the supported external network interfaces 534 a , 534 b , 534 c with second OS 550 .
  • first OS 530 might only share a WiFi interface 534 a with second OS 550 , without sharing the cellular LTE interface 534 b or Bluetooth interface 534 c with second OS 550 .
  • This configuration may be useful in situations where an application on second OS 550 is attempting to transfer a large amount of data, which may incur significant carrier data fees.
  • sharing only the WiFi interface 534 a with second OS 550 this may ensure that the application can only transmit data when a WiFi connection has been established, and may avoid using carrier data and incurring overage fees.
  • the sharing of some or all of external network interfaces 534 a , 534 b , 534 c may be enabled by client control 531 .
  • the IP table 532 contains rules causing data packets received at shared interface 536 to be forwarded to WiFi interface 534 a .
  • second OS 550 might be prevented from using either of LTE interface 534 b or Bluetooth interface 534 c .
  • various rules can be implemented in the IP table 532 to implement the appropriate network interface sharing configuration. For example, data packets emanating from a particular application may be routed to WiFi interface 534 a , and data packets emanating from a second application (e.g. Facebook) may be forwarded to LTE interface 534 b.
  • FIG. 6C is a block diagram of an example embodiment of an embedded device having a host OS 510 , a first OS 530 running in a first container, and a second OS 550 running in a second container.
  • the first OS 530 can make use of a WiFi interface 534 a
  • the second OS 550 can make use of LTE interface 534 b .
  • the first OS 530 does not have drivers for LTE interface 534 b
  • the second OS 550 does not have drivers for WiFi interface 534 a.
  • LTE interface 534 b can be shared with first OS 530
  • WiFi interface 534 a can be shared with second OS 550
  • Control client 531 can be configured to route certain packets to shared network interface 536 , and ultimately to shared network interface via network bridge 590
  • Control client 551 can be configured to route data packets received at shared interface 556 to LTE interface 534 b , thus providing the first OS 530 with the capability of using LTE interface 534 b
  • Second OS 550 can also make use of WiFi interface 534 a in a manner similar to that described in relation to FIG. 6A .
  • Provided the IP tables 532 and 552 are configured appropriately, each of first OS 530 and second OS 550 can share an external network interface with each of second OS 550 and first OS 530 , respectively.
  • FIG. 7 is a block diagram of an example embedded device which has of a host OS 510 , a first OS 530 , a second OS 550 , and a third OS 560 .
  • the host OS 510 provides network bridge 590 .
  • Each of shared interfaces 536 , 556 and 566 is visible to network bridge 590 .
  • Network bridge 590 allows for communication between each of shared interfaces 536 , 556 and 566 .
  • each of first OS 530 , second OS 550 and third OS 560 has a respective control client 531 , 551 , 561 , IP tables 532 , 552 , 562 , and shared interfaces 536 , 556 , 566 .
  • first OS 530 has drivers for WiFi interface 534 a
  • second OS 550 has drivers for LTE interface 534 b
  • third OS 560 has drivers for Ethernet interface 534 d .
  • first OS 530 can share WiFi interface 534 a with one, both, or none of second OS 550 and third OS 560 .
  • Second OS 550 can share LTE interface 534 b with one, both, or none of first OS 530 and third OS 560 .
  • Third OS 560 can share ethernet interface 534 d with one, both, or none of first OS 530 and second OS 550 .
  • IP tables 532 , 552 , 562 for routing data packets to the appropriate shared network interface and through network bridge 590 .
  • one external network interface 534 is shared with one other operating system. In some embodiments, one external network interface 534 is shared with two or more other operating systems. In some embodiments, two or more external network interfaces are shared with one other operating system. In some embodiments, two or more external network interfaces are shared with two or more other operating systems.
  • FIG. 8 is a block diagram of an example embedded device configured to share a virtual network interface.
  • the embedded device of FIG. 8 includes a host OS 510 , a first OS 530 , and a second OS 550 .
  • the labels for various interfaces correspond to entries in the IP tables 532 and 552 in FIGS. 9A and 9B below.
  • First 530 has drivers for an external network interface, wireless_lan 534 a and a shared network interface, shared_interface_ 1 536 .
  • Second OS 550 has drivers for a shared network interface, shared_interface_ 2 556 , and a virtual private network (VPN) connection, denoted as tunnel 534 e .
  • Data packets can be routed from tunnel 534 e to VPN client 834 , and then to another network, remote_interface 534 f.
  • VPN virtual private network
  • first OS 530 may require the use of a VPN connection to communicate with remote_interface 534 f .
  • first OS 530 does not have the drivers to support a VPN connection.
  • Second OS 550 supports VPN connections and has a connection to remote_interface 534 f via a VPN tunnel, denoted as tunnel 534 e .
  • second OS 550 can share the connection to remote_interface 534 e with applications running in first OS 530 .
  • Control client 551 in second OS 550 has an IP table 552 configured to redirect data packets incoming at tunnel 534 e to shared_interface_ 2 556 .
  • IP table 552 is further configured to forward data packets outgoing from tunnel 534 e to shared_interface_ 2 556 .
  • IP table 532 in first OS 530 is configured to route all data packets to shared_interface_ 1 536 and ultimately to shared_interface_ 2 556 .
  • FIGS. 9A and 9B are a depiction of the contents of example IP tables 532 and 552 , respectively.
  • the IP table 532 for the first OS 530 defines a number of network interfaces at 910 , and a routing rule at 920 .
  • IP table 552 for the second OS 550 also defines a number of network interfaces at 930 , and a set of routing rules at 940 .
  • one or more of the operating systems may be notified when an external network interface 534 has been made available for sharing with second OS 550 or other operating systems by first OS 530 . Notifications may be used in creating routing rules for IP tables in various operating systems.
  • the first OS 530 sends a notification to second OS 550 by way of inter-OS communication 580 .
  • FIG. 10 is a block diagram of an example depiction of communication between containers on an embedded device.
  • virtual memory 1100 is segregated into user space 1120 and kernel space 1140 .
  • kernel space 1140 is reserved for specific system operations associated with kernel 1160 , which houses core programs 1180 .
  • a number of containers 1200 , 1220 , 1240 , 1260 are provided in user space 1120 .
  • first process 1280 e.g. a first operating system 530 or an application running in first operating system 530
  • second process 1300 in a second container 1220 is performed via a buffer process 1320 .
  • the buffer process 1320 controls the communication between the first process 1280 and the second process 1300 .
  • communication between first process 1280 and second process 1300 is contingent upon a determination that communication between the first process 1280 and second process 1300 is authorized. Such a determination may be based on the entities attempting to communicate (e.g. an authorization for communication between the two containers 1200 and 1220 ) or based on the properties of the message being communicated (e.g. a message relating to the availability of first external network interface 534 may be authorized to be communicated between containers to different operating systems).
  • a buffer process 1320 determines whether the communication is authorized. In some embodiments, an authorization process separate from the buffer process 1320 determines whether the communication is authorized, and provides an indication to buffer process 1320 as to whether the communication is authorized. In some embodiments, the determination is made based on authorization data 1340 accessible to the buffer process 1320 .
  • the authorization data 1340 may define restrictions on communications. Such restrictions can specify combinations of processes and/or containers which are allowed to communicate. Such restrictions can also specify particular types of communications which are allowed for specific process or container combinations.
  • process 1300 can communicate a message to two processes 1360 , 1380 running in container 1240 via buffer process 1320 .
  • Process 1300 can communicate a message to one process in container 1240 and to one process 1280 in container 1200 .
  • Process 1280 can communicate a message to process 1400 via buffer 1320 , and then via process 1300 .
  • communication via the buffer process 1320 can be authorized for selected combinations of processes.
  • An example method of performing inter-OS communication between a first (source) process 1280 (e.g. first OS 530 ) and a second (destination) process 1300 (e.g. second OS 550 ) begins with the first process 1280 sending a message to the buffer process 1320 .
  • the buffer process may examine the source and destination processes as well as the contents of the communication to determine whether the communication is authorized. If the buffer process 1320 determines that the communication is authorized, the communication is delivered to the destination process 1300 . If the buffer process determines that the communication is not authorized, the communication is not delivered to the destination process.
  • different processes or containers may have different privileges for inter-OS communication.
  • authorization may be operating system-based, in which case all communications may be allowed between specific combinations of containers or operating systems.
  • authorization can be process- or application-based, in which communications can be allowed between specific combinations of processes.
  • Inter-OS communication 580 may be used to notify an operating system that an external network interface 534 and/or shared network interface 536 has been activated or otherwise become available.
  • control client 531 can send an inter-OS communication to control client 551 using inter-OS communication 580 .
  • the communication may include, for example, any one or more of an identifier and corresponding IP or MAC addresses for one or more network interfaces. If the communication between the two operating systems is authorized, the recipient operating system can use the contents of the communication to update IP tables and/or permissions within the control client to reflect the current state of available connections and routing configurations.
  • FIG. 11 is a flow chart of an example method of sharing a network interface between virtualized operating systems in an embedded device 100 .
  • the host operating system 510 provides a network bridge 590 which is available to at least two containers.
  • the network bridge is initialized upon startup of the embedded device.
  • a first operating system 530 running in a first container of the embedded device connects a first shared network interface 536 to the network bridge 590 .
  • a second operating system 550 running in a second container of the embedded device connects a second shared network interface 556 to the network bridge 590 .
  • one or more of the operating systems 530 , 550 creates a shared network interface upon startup.
  • a first external network interface 534 in first operating system 530 is linked to the first shared network interface 536 by control client 531 .
  • the first external network interface 534 may be a physical (e.g. ethernet, WiFi, LTE) interface or a virtual interface (e.g. VPN connection).
  • linking first external network interface to first shared network interface 536 comprises creating one or more rules in an IP table 532 which controls the routing of data packets in first operating system 530 .
  • the second operating system 550 is notified that the external network interface 534 is active and has been made available.
  • the notifications are made using inter-OS communication, as described above.
  • other operating systems including or in addition to second operating system 550 are notified that the external network interface 534 has been activated and made available.
  • the first external network interface 534 is shared with the second operating system 550 and can transmit and/or receive data packets routed via shared network interface 556 .
  • the first external network interface 534 is shared with one or more of second operating system 550 and any other operating systems which are executing on embedded device 100 .
  • sharing a first external network interface 534 comprises configuring one or more IP tables 532 , 552 to define rules for routing data packets to the first external network interface 534 .
  • the IP tables 532 , 552 may be configured so as to make the first external network interface 534 the default route for network traffic for the second operating system 550 .
  • the first external network interface 534 may be set as the default route for network traffic for one or more additional operating systems in addition to second operating system 550 .
  • sharing the first external network interface 534 comprises setting permissions for access to the first external network interface 534 on an application-by-application basis.
  • the control client 551 in the second operating system 550 may be configured to block network traffic from a particular application (e.g. Facebook) from being forwarded to the shared network interface 556
  • the control client 551 may be configured to allow network traffic from a different application (e.g. an email application) to be routed to the shared network interface 556 and ultimately to the first external network interface 534 .
  • the method further comprises sharing additional external network interfaces 534 with other operating systems.
  • second OS 550 may have access to an LTE interface 534 b to which first OS 530 does not have access.
  • the LTE interface 534 b may be shared with first OS 530 using similar techniques as those described above.

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer And Data Communications (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

Systems and methods are provided for sharing a network interface between operating systems in an embedded device. A host operating system provides a network bridge. First and second operating systems provide first and second respective shared network interfaces connected to the bridge. A first external network interface is linked to the first shared network interface via a control client. The first external network interface is shared with the second operating system.

Description

FIELD
This application relates to sharing network interfaces, and in particular to sharing network interfaces between containers on an embedded computing system.
BACKGROUND
Embedded computing devices (hereinafter “embedded devices”) are computing devices with specific functions which operate within a larger mechanical or electrical system. Embedded devices are used extensively in consumer, commercial, automotive, industrial and healthcare markets. Generally, the operating system of an embedded device might only run applications which help the embedded device to accomplish a specific task.
Examples of embedded devices include appliances (e.g. dishwashers), banking Automated Teller Machines (ATMs), routers, Point-of-Sale (POS) terminals, and mobile devices (e.g. mobile phones). Some embedded devices can connect to the internet or other computing devices via a network interface, and are colloquially referred to as “smart” devices.
Embedded devices typically run an operating system (OS) that manages hardware and applications. Examples of common operating systems include Unix, Android, Linux, iOS, OS X, and Ubuntu. A typical operating system allocates memory to different processes. An operating system can segregate virtual memory into user space and kernel space. The kernel of an operating system is the central core of the operating system and houses core programs. The kernel space is typically reserved for specific operations associated with the kernel. Application programs typically operate in user space.
Different operating systems may be more suitable for different purposes. For example, for a device with limited processing and storage capabilities, an operating system with a smaller footprint may be more suitable, but may offer reduced functionality and driver support. Operating systems with a larger footprint (e.g. Windows) may be more suitable for computing devices with increased processing and storage capabilities.
Some operating systems allow for multiple virtualized user space instances (referred to herein as “containers”). Separate containers can be isolated from one another, with the kernel providing resource-management features to limit the impact of one container's activities on other containers. Different operating systems can run in separate containers.
Although embedded devices may have limited resources, the use of multiple user-space instances in embedded computing systems is desirable. For example, a smartphone may run a first operating system in a first container and a second operating system in a second container. The first operating system may be responsible for work-related applications. The second operating system may be responsible for personal applications. The use of segregated containers may be desirable when applications and data are intended to be kept separate. In this example, it is desirable for confidential work-related data and applications to be kept separate from the personal applications and personal data of a user.
Because processing power and storage may be limited on an embedded device, it might not be desirable to run multiple virtualized operating systems which have a relatively large footprint (i.e. relatively high computing resource requirements). For example, running instances of both Android and iOS might not be desirable on an embedded computing system with limited resources.
There may be instances in which an operating system running in a first container supports functionality which is not supported by a second operating system. For example, a first operating system may support network connectivity via a network interface, whereas a second, less resource-intensive operating system running on the same device might not provide network connectivity. It would be desirable to share the network interface of the first operating system with the second operating system.
SUMMARY
According to one aspect, there is provided a method of sharing a network interface between virtualized operating systems in an embedded device, the method comprising: providing, by a host operating system running on the embedded device, a network bridge; in a first operating system running in a first container managed by the host operating system, connecting a first shared network interface with the network bridge; in a second operating system running in a second container managed by the host operating system, connecting a second shared network interface with the network bridge; linking, by a first control client in the first operating system, a first external network interface to the first shared network interface; and sharing the first external network interface with the second operating system via the network bridge.
In any of the previous embodiments, the first control client may comprise an Internet Protocol (IP) table configured to route packets between the first external network interface and the second shared network interface.
In any of the previous embodiments, the method may further comprise: linking, by a second control client in the second operating system, a second external network interface to the first shared network interface; and sharing the second external network interface with the first operating system via the network bridge.
In any of the previous embodiments, the method may further comprise: in a third operating system running in a third container managed by the host operating system, connecting a third shared network interface with the network bridge; and sharing the first external network interface with the third operating system via the network bridge.
In any of the previous embodiments, the method may further comprise: in a third operating system running in a third container manager by the host operating system, connecting a third shared network interface with the network bridge; sharing the first external network interface with the third operating system via the network bridge; and sharing the second external network interface with the third operating system via the network bridge.
In any of the previous embodiments, sharing the first external network interface with the second operating system may comprise: sharing the first external network interface with a first number of applications running in the second operating system, wherein the first number of applications is less than a total number of applications running in the second operating system.
In any of the previous embodiments, the first operating system may include a driver for the first external network interface, and the second operating system may lack the driver for the first external network interface.
In any of the previous embodiments, the first external network interface may be one of a hardware-based network interface and a virtual network interface.
In any of the previous embodiments, the second external network interface may be one of a hardware-based network interface and a virtual network interface.
In any of the previous embodiments, the method may further comprise notifying the second operating system that the first external network interface is available for sharing with the second operating system.
According to another aspect, there is provided an embedded device, comprising: a processor; a memory containing computer-readable instructions for execution by said processor, said instructions, when executed by said processor, causing the processor to: provide, by a host operating system, a network bridge; connect, by a first operating system running in a first container managed by the host operating system, a first shared network interface with the network bridge; connect, by a second operating system running in a second container managed by the host operating system, a second shared network interface with the network bridge; link, by a first control client in the first operating system, a first external network interface to the first shared network interface; and share the first external network interface with the second operating system via the network bridge.
In any of the previous embodiments, the first control client may comprise an Internet Protocol (IP) table configured to route packets between the first external network interface and the second shared network interface.
In any of the previous embodiments, the memory may further contain instructions to: link, by a second control client in the second operating system, a second external network interface to the first shared network interface; and share the second external network interface with the first operating system via the network bridge.
In any of the previous embodiments, the memory may further contain instructions to: in a third operating system running in a third container managed by the host operating system, connect a third shared network interface with the network bridge; and share the first external network interface with the third operating system via the network bridge.
In any of the previous embodiments, the memory may further contain instructions to: in a third operating system running in a third container managed by the host operating system, connect a third shared network interface with the network bridge; share the first external network interface with the third operating system via the network bridge; and share the second external network interface with the third operating system via the network bridge.
In any of the previous embodiments, sharing the first external network interface with the second operating system may comprise sharing the first external network interface with a first number of applications running in the second operating system, and the first number of applications may be less than a total number of applications running in the second operating system.
In any of the previous embodiments, the first operating system may include a driver for the first external network interface, and the second operating system may lack the driver for the first external network interface.
In any of the previous embodiments, the first external network interface may be one of a hardware-based network interface and a virtual network interface.
In any of the previous embodiments, the memory may further contain instructions to notify the second operating system that the first external network interface is available for sharing with the second operating system.
BRIEF DESCRIPTION OF THE DRAWINGS
In the figures, which depict example embodiments:
FIG. 1 is a block diagram depicting components of an example embedded computing device;
FIG. 2 is depicts a simplified arrangement of virtual memory allocation in an embedded computing device;
FIG. 3 depicts an example configuration of virtual memory in an embedded computing device which supports multiple user space instances;
FIG. 4 depicts an example embodiment of an embedded computing device running a host operating system and two operating systems in separate containers;
FIG. 5 is a block diagram depicting an example embodiment of an embedded device having multiple network interfaces;
FIG. 6A is a block diagram depicting an example embodiment of an embedded device having two operating systems with multiple network interfaces;
FIG. 6B is a block diagram of an example embodiment of an embedded device having a host OS, a first OS running in a first container, and a second OS running in a second container;
FIG. 6C is a block diagram of an example embodiment of an embedded device having a host OS, a first OS running in a first container, and a second OS running in a second container;
FIG. 7 is a block diagram of an example embedded device which has a host OS, a first OS, a second OS, and a third OS;
FIG. 8 is a block diagram of an example embedded device configured to share a virtual network interface;
FIG. 9A is a depiction of the contents of an example IP tables for a first control client;
FIG. 9B is a depiction of the contents of an example IP table for a second control client;
FIG. 10 is a block diagram of an example depiction of communication between containers on an embedded device; and
FIG. 11 is a flow chart of an example method of sharing a network interface between virtualized operating systems in an embedded device.
These drawings depict aspects of example embodiments for illustrative purposes.
DETAILED DESCRIPTION
FIG. 1 is a block diagram of components of an example embedded computing device 100. Embedded computing device 100 may include one or more processors 102, memory 104, storage 106, I/O devices 108, and network interface 110, and combinations thereof.
Processor 102 is any suitable type of processor, such as a processor implementing an ARM or x86 instruction set. In some embodiments, processor 102 is a graphics processing unit (GPU). Memory 104 is any suitable type of random access memory accessible by processor 102. Storage 106 may be, for example, one or more modules of memory, hard drives, or other persistent computer storage devices.
I/O devices 108 include, for example, user interface devices such as a screen, including capacitive or other touch-sensitive screens capable of displaying rendered images as output and receiving input in the form of touches. In some embodiments, I/O devices 108 additionally or alternatively include one or more of speakers, microphones, sensors such as accelerometers and global positioning system (GPS) receivers, keypads, or the like. In some embodiments, I/O devices 108 include ports for connecting embedded computing device 100 to other computing devices. In an example embodiment, I/O devices 108 include a universal serial bus (USB) controller for connection to peripherals or to host computing devices.
Network interface 110 is capable of connecting embedded computing device 100 to one or more communication networks. In some embodiments, network interface 110 includes one or more of wired interfaces (e.g. wired ethernet) and wireless radios, such as WiFi, Bluetooth, or cellular (e.g. GPRS, GSM, EDGE, CDMA, LTE, or the like). Network interface 110 can also be used to establish virtual network interfaces, such as a Virtual Private Network (VPN).
Embedded computing device 100 operates under control of software programs. Computer-readable instructions are stored in storage 106, and executed by processor 102 in memory 104. Software executing on embedded computing device 100 may include, for example, an operating system and application software 122.
FIG. 2 depicts a simplified arrangement of virtual memory allocation in an example embedded computing device 100. As noted above, an operating system includes a kernel 121 that is the central core of the operating system. An operating system can segregate virtual memory 200 into kernel space 210 and user space 250. The kernel space 210 is typically reserved for specific operations associated with the kernel, referred to herein as system programs 220. For example, the system programs 220 may handle system start-up processes and input/output requests from application software by translating requests into data-processing instructions for the processor 102. The kernel executes system programs in kernel space 210. Generally, application software 122 runs in user space 210 and user activities occur in user space 210.
As noted above, some operating system kernels 121 support multiple virtualized user space instances (referred to herein as containers). FIG. 3 depicts an example configuration of virtual memory 200 in an embedded computing device 100 which supports multiple containers. As depicted, virtual memory 200 includes two containers 310, 350. Separate containers can be isolated from one another, with the kernel 121 providing resource-management features to limit the impact of one container's activities on other containers. In some embodiments, the memory allocated to container 310 is separate from memory allocated to container 350.
Each container 310, 350 may execute an instance of an operating system. FIG. 4 depicts an example embodiment in which the host (or native) operating system running on embedded computing device 100 is Linux. In some embodiments, the native operating system may be a proprietary operating system which is based on the Linux kernel 421. A proprietary operating system may be desirable for embedded computing device 100 because the proprietary operating system may be stripped of features which are deemed unnecessary or undesirable. The proprietary operating system may also provide a manufacturer of embedded computing device 100 with a base level of control over the software applications which can be executed on embedded computing device 100.
In the example embodiment of FIG. 4, the system programs 420 in the proprietary Linux kernel 421 include support for multiple virtualized user space instances. As depicted, user space 220 contains a first container 310 and a second container 350. In this example, first container 310 is running a first operating system 320 (e.g. Tizen). In this example, second container 350 is running a second operating system 360 (e.g. a generic version of the Android OS). It should be noted that although the example embodiment of FIG. 4 depicts two different operating systems running in first container 310 and second container 350, the present application also contemplates embodiments in which two different instances of the same operating system are running in containers 310, 350. For example, two separate instances of Android may be running in containers 310, 350.
Throughout the specification, a process includes software applications, underlying processes, and any combination thereof. For example, processes 330 are executing in container 310, and processes 370 are executing in container 350. It should be noted that first operating system 320 and second operating system 360 may also be considered to be processes executing in containers 310 and 350, respectively. Processes 330 may communicate with first OS 320. In particular, processes 330 may make use of drivers and/or services 325 which are present in the kernel 321 of first OS 320. Processes 370 may communicate with second OS 360, and in particular may make use of drivers and/or services 365 which are present in the kernel 361 of second OS 360.
Communication between containers 310, 350 (referred to herein as inter-container communication) is typically highly restricted. Reasons for such restrictions in communication may relate to security or business considerations. For example, if embedded computing device 100 is a smartphone distributed by an employer, container 310 may run an operating system intended to be used for work purposes, whereas container 350 may run an operating system intended to be used for personal use by the user. In this example context, and many other contexts, it is desirable to segregate the degree to which containers are able to interact.
Different operating systems might provide different levels of support for various processes. For example, the kernel 361 of second OS 360 might not provide support for certain network interfaces. That is, drivers/services 365 might not include support for one or more of, e.g., wired ethernet, WiFi (IEEE 802.11a/b/g/n/ac), Bluetooth, or cellular (e.g. GPRS, GSM, EDGE, CDMA, LTE) connections. First OS 320 may provide support for one or more network interfaces not supported by second OS 360. That is, the drivers/services 325 in kernel 321 of first OS 320 may support one or more of the above-noted network interfaces which is not supported by second OS 360. In some embodiments, network interfaces further include virtual network interfaces (e.g. Virtual Private Network (VPN) connections).
According to some embodiments, embedded computing device 100 is configured to share one or more network interfaces with one or more containers 310, 350. For example, first OS 320 running in container 310 can communicate with container 350 to share a network interface (e.g. a WiFi network interface) with second OS 360 in container 350. Thus, the instance of second OS 360 running in container 350 can communicate via the WiFi network interface in spite of the WiFi network interface not being natively supported by the kernel 361 of second OS 360.
Sharing network interfaces between containers may result in numerous benefits, including more efficient use of storage space on embedded device 100. Given that some embedded devices 100 may have limited storage and processing capabilities, the efficient use of storage space and processing capabilities may be an important consideration.
For example, a first operating system which provides broad support for various network interfaces may be running in a first container on embedded device 100. One or more other operating systems may be running in one or more other containers on embedded device 100. The other operating systems might not include drivers for a given type of network interface. Aside from lacking drivers for the given type of network interface, the other operating systems may be suitable for performing specific tasks on embedded device 100, and may require less memory and storage on embedded device 100 relative to the first operating system. It may be possible to run the other operating systems in separate containers on embedded device 100 in addition to the first operating system, whereas embedded device 100 might not have sufficient storage and processing capabilities to run multiple instances of the first operating system in separate containers. Thus, according to some embodiments, the increased driver support provided by the first operating system can be leveraged to provide support for network interfaces to other operating systems that do not include drivers for the network interfaces.
In some embodiments, the operating system which has control over the network interface may share the network interface with another operating system running in a separate container on embedded device 100. In some embodiments, the operating system which has control over the network interface may share the network interface with two or more other operating systems running in respective separate containers on embedded device 100.
In some embodiments, an operating system with access to a first network shares access to the first network with a second operating system that does not have access to or is not capable of interfacing with the first network. For example, the second operating system might not have driver support for the network interface. In some embodiments, the second operating system has access to a second network and shares access to the second network with the first operating system.
FIG. 5 is a block diagram of an example embodiment of an embedded device having a shared network interface between a host operating system and a first operating system. As depicted, host operating system 510 is the core operating system of the embedded device. In some embodiments, host operating system 510 is a proprietary Linux operating system. In some embodiments, the host operating system 510 provides relatively minimal functionality beyond the operations necessary to execute one or more operating systems. Host operating system 510 may provide access to system programs 420 from the proprietary Linux kernel 421 described above. Host operating system 510 supports multiple containers. In the example embodiment depicted in FIG. 5, only one container is running with an instance of a first operating system 530. In some embodiments, first operating system 530 is Android OS 360 and includes driver support for one or more network interfaces 520.
Host operating system 510 is operable to create a shared network interface 536. Shared network interface 536 allows for communication of network data packets between the host OS 510 and first OS 530. As depicted, embedded computing device 100 also includes an external network interface 534. External network interface 534 may be used to communicate data packets between the first OS 530 and a network or device external to embedded computing device 100.
After loading first operating system 530, first operating system 530 is operable to communicate with external network interface 534. In the example embodiment of FIG. 5, first OS 530 includes driver support for the external network interface 534. The external network interface 534 may be a cellular network interface (e.g. LTE). Alternatively, the external network interface 534 may be any of a wired or wireless local area network (LAN) (e.g. 100-base T ethernet, Gigabit ethernet, 802.11a/b/g/n/ac wireless LAN, Bluetooth, or cellular including GPRS, GSM, EDGE, CDMA, and LTE). In some embodiments, the external network interface 534 is a virtual network interface (e.g. a Virtual Private Network (VPN) interface).
As depicted, first OS 530 includes control client 531. Control client 531 may be implemented as software, hardware, or a combination of software and hardware. Control client 531 is a module which controls communication between external network interface 534 and shared network interface 536. In some embodiments, control client 531 routes data packets received at external network interface 534 to shared network interface 536. In some embodiments, control client 531 routes data packets received at shared network interface 536 to external network interface 534.
External network interface 534 communicates data packets in accordance with various communication protocols (e.g. TCP/IP). Shared network interface 536 is configured to communicate data packets to network bridge 590, which may forward data packets to other shared network interfaces in other containers, as described below. In some embodiments, network bridge 590 is provided by host OS 510. In some embodiments, each shared network interface is visible to host OS 510 and network bridge 590.
In some embodiments, control client 531 uses an Internet Protocol (IP) table 532 to coordinate the routing of data packets between external network interface 534 and shared network interface 536. IP tables contain a list of one or more rules which are used to route data packets from one network interface to another network interface. IP tables are supported by many operating systems, including, for example, Linux and Android. In some embodiments, an IP table 532 may define rules for incoming packets. For example, an IP table 532 may define a rule that some or all incoming data packets for external network interface 534 be forwarded to shared network interface 536. An IP table 532 may also define rules for outgoing data packets from a network interface. For example, an IP table 532 may define a rule that some or all outgoing data packets from shared network interface 536 be forwarded to external network interface 534.
FIG. 6A is a block diagram of an example embodiment of an embedded device having a host OS 510, a first OS 530 running in a first container, and a second OS 550 running in a second container. Each of external network interface 534, shared network interface 536, control client 531, and IP table 532 may function in a manner similar to that described above in relation to FIG. 5. Second OS 550 includes shared network interface 556, control client 551, and IP table 552. In the example embodiment of FIG. 6A, second OS 550 does not have the capability to directly make use of external network interface 534. For example, second OS 550 might not have driver support for the external network interface 534. Thus, in this example, second OS 550 would be unable to make use of external network interface 534 in spite of external network interface 534 being a component in embedded device 100.
In the example of FIG. 6A, each of shared network interface 536 and shared network interface 556 is connected to network bridge 590. Network bridge 590 is provided by host OS 510. Network bridge 590 provides a path for routing data packets between second OS 550 and first OS 530 via host OS 510. It should be noted that in the configuration depicted in FIG. 6A, shared interface 556 is not visible to first OS 530. Similarly, shared interface 536 and external network interface 534 are not visible to second OS 550 because the first OS 530 and second OS 550 are in separate containers. Network bridge 590 is able to detect and communicate with each of external network interface 534, shared network interface 536, and shared network interface 556. In some embodiments, first OS 530 communicates the availability of one or more of external network interface 534 and shared network interface 536 to second OS 550 by way of inter-OS communication 580.
In one example embodiment, an application (e.g. a bar code scanning application) is running in second OS 550 and requires a network connection. When external network interface 534 is shared with second OS 550, data packets from the bar code scanning application can be routed to shared network interface 556. Control client 551 controls the routing of the data packets by way of IP table 552, and the data packets are then sent from shared interface 556, to network bridge 590, to shared interface 536, and then to external network interface 534. The data packets can then be transmitted via external network interface 534.
As with the functioning of shared network interface 556, control client 531 controls the routing of data packets from shared interface 536 to external network interface 534. Thus, the data packets from the bar code scanning application in second OS 550 running in a second container can be routed internally from the second OS 550, to the bridge 590, and then to the first OS 530, where the external network interface 534 will ultimately send the data packets to the intended destination.
In some embodiments, the bar code scanning application in second OS 550 may also receive data packets via external network interface 534. Data packets received at external network interface 534 are routed using rules from IP table 532 to shared interface 536, then to network bridge 590, and then shared interface 556 in second OS 550, which then delivers the data packets to the bar code scanning application running in second OS 550. Thus, the bar code scanning application in second OS 550 (which does not have access to external network interface 534) is able to send and receive data packets by routing packets from the second container to the first container and ultimately to external network interface 534.
In some embodiments, control client 531 shares the external network interface 534 with the second OS 550 at an OS-level. Sharing the external network interface 534 at an OS-level provides access to the external network interface 534 to all applications running in second OS 550. An OS-level sharing policy may be implemented by suitably configured control clients 531 and 551. For example, IP table 552 can be configured to forward data packets from every application to shared interface 556 and then to network bridge 590. Continuing the example, IP table 532 can be configured to forward all data packets received at shared interface 536 to external network interface 534. This would result in all outgoing network traffic from second OS 550 being routed to external network interface 534.
In some embodiments, control clients 531 and 551 restrict the sharing of external network interface 534 on an application-by-application basis. In some embodiments, second OS 550 can provide authorization to particular applications to make use of external network interface 534 when shared. This may be useful in situations where network access for some applications is viewed as being more important or legitimate than network access for other applications. Application authorization may be controlled by control client 551. For example, control client 551 may receive packet data transmission requests from various applications running in second OS 550. Control client 551 can be configured to block the request for packet data transmission based on the application requesting network data transmission. Control client 551 can also be configured to allow the request for packet data transmission based on the application requesting transmission being authorized.
In some embodiments, control client 551 maintains a list of applications which are blocked from transmitting packet data to shared interface 556 (a “black list”) while allowing any other application by default. In some embodiments, control client 551 maintains a list of applications which are authorized to transmit packet data to shared interface 556 (a “white list”) while blocking any other application not in the list by default. The use of a white list may be desirable from a security perspective because an embedded device 100 which has been hacked or otherwise compromised still might not be able to transmit packet data from other illegitimate applications if those other applications are not contained in the white list.
In an example embodiment, first OS 530 is running in a container used for work purposes on an embedded device 100 provided by an employer to an employee. Second OS 550 is running in a container intended for personal use. In this example embodiment, an email application running in second OS 550 may be authorized to make use of external network interface 534, whereas a social media application (e.g. Facebook) running in second OS 550 might not be authorized to make use of external network interface 534. Thus, the external network interface 534 may be shared with less than all of the applications running on second OS 550.
FIG. 6B is a block diagram of an example embodiment of an embedded device having a host OS 510, a first OS 530 running in a first container, and a second OS 550 running in a second container. In some embodiments, the embedded device 100 has several different external network interfaces 534. As depicted, the embedded device 100 has a WiFi interface 534 a, a cellular LTE interface 534 b, and a Bluetooth interface 534 c. First OS 530 may include driver support for one or more of external network interfaces 534 a, 534 b, 534 c.
In some embodiments, control client 531 enables the sharing of one, all, or any combination of the supported external network interfaces 534 a, 534 b, 534 c with second OS 550. Thus, in some embodiments, first OS 530 might only share a WiFi interface 534 a with second OS 550, without sharing the cellular LTE interface 534 b or Bluetooth interface 534 c with second OS 550. This configuration may be useful in situations where an application on second OS 550 is attempting to transfer a large amount of data, which may incur significant carrier data fees. By sharing only the WiFi interface 534 a with second OS 550, this may ensure that the application can only transmit data when a WiFi connection has been established, and may avoid using carrier data and incurring overage fees.
The sharing of some or all of external network interfaces 534 a, 534 b, 534 c may be enabled by client control 531. In some embodiments, the IP table 532 contains rules causing data packets received at shared interface 536 to be forwarded to WiFi interface 534 a. In the absence of a rule in the IP table 532 for forwarding data packets to interfaces 534 b or 534 c, second OS 550 might be prevented from using either of LTE interface 534 b or Bluetooth interface 534 c. It should be appreciated by a person skilled in the art that various rules can be implemented in the IP table 532 to implement the appropriate network interface sharing configuration. For example, data packets emanating from a particular application may be routed to WiFi interface 534 a, and data packets emanating from a second application (e.g. Facebook) may be forwarded to LTE interface 534 b.
FIG. 6C is a block diagram of an example embodiment of an embedded device having a host OS 510, a first OS 530 running in a first container, and a second OS 550 running in a second container. In the example embodiment of FIG. 6C, the first OS 530 can make use of a WiFi interface 534 a, and the second OS 550 can make use of LTE interface 534 b. In this embodiment, the first OS 530 does not have drivers for LTE interface 534 b, and the second OS 550 does not have drivers for WiFi interface 534 a.
According to some embodiments, LTE interface 534 b can be shared with first OS 530, and WiFi interface 534 a can be shared with second OS 550. Control client 531 can be configured to route certain packets to shared network interface 536, and ultimately to shared network interface via network bridge 590. Control client 551 can be configured to route data packets received at shared interface 556 to LTE interface 534 b, thus providing the first OS 530 with the capability of using LTE interface 534 b. Second OS 550 can also make use of WiFi interface 534 a in a manner similar to that described in relation to FIG. 6A. Provided the IP tables 532 and 552 are configured appropriately, each of first OS 530 and second OS 550 can share an external network interface with each of second OS 550 and first OS 530, respectively.
FIG. 7 is a block diagram of an example embedded device which has of a host OS 510, a first OS 530, a second OS 550, and a third OS 560. The host OS 510 provides network bridge 590. Each of shared interfaces 536, 556 and 566 is visible to network bridge 590. Network bridge 590 allows for communication between each of shared interfaces 536, 556 and 566. As depicted, each of first OS 530, second OS 550 and third OS 560 has a respective control client 531, 551, 561, IP tables 532, 552, 562, and shared interfaces 536, 556, 566.
As depicted, first OS 530 has drivers for WiFi interface 534 a, second OS 550 has drivers for LTE interface 534 b, and third OS 560 has drivers for Ethernet interface 534 d. Depending on the desired configuration, first OS 530 can share WiFi interface 534 a with one, both, or none of second OS 550 and third OS 560. Second OS 550 can share LTE interface 534 b with one, both, or none of first OS 530 and third OS 560. Third OS 560 can share ethernet interface 534 d with one, both, or none of first OS 530 and second OS 550. Each of these configurations is possible with appropriately configured IP tables 532, 552, 562 for routing data packets to the appropriate shared network interface and through network bridge 590.
Although the depiction in FIG. 7 shows three operating systems running on embedded device 100, it should be appreciated that this configuration can be generalized to any number of operating systems, provided the embedded device has sufficient memory and processing power to run that number of operating systems. In some embodiments, one external network interface 534 is shared with one other operating system. In some embodiments, one external network interface 534 is shared with two or more other operating systems. In some embodiments, two or more external network interfaces are shared with one other operating system. In some embodiments, two or more external network interfaces are shared with two or more other operating systems.
FIG. 8 is a block diagram of an example embedded device configured to share a virtual network interface. As depicted, the embedded device of FIG. 8 includes a host OS 510, a first OS 530, and a second OS 550. In the example embodiment of FIG. 8, the labels for various interfaces correspond to entries in the IP tables 532 and 552 in FIGS. 9A and 9B below. First 530 has drivers for an external network interface, wireless_lan 534 a and a shared network interface, shared_interface_1 536. Second OS 550 has drivers for a shared network interface, shared_interface_2 556, and a virtual private network (VPN) connection, denoted as tunnel 534 e. Data packets can be routed from tunnel 534 e to VPN client 834, and then to another network, remote_interface 534 f.
One or more applications executing in first OS 530 may require the use of a VPN connection to communicate with remote_interface 534 f. In the embodiment shown in FIG. 8, first OS 530 does not have the drivers to support a VPN connection. Second OS 550 supports VPN connections and has a connection to remote_interface 534 f via a VPN tunnel, denoted as tunnel 534 e. In the example of FIG. 8, second OS 550 can share the connection to remote_interface 534 e with applications running in first OS 530.
Control client 551 in second OS 550 has an IP table 552 configured to redirect data packets incoming at tunnel 534 e to shared_interface_2 556. IP table 552 is further configured to forward data packets outgoing from tunnel 534 e to shared_interface_2 556. IP table 532 in first OS 530 is configured to route all data packets to shared_interface_1 536 and ultimately to shared_interface_2 556. FIGS. 9A and 9B are a depiction of the contents of example IP tables 532 and 552, respectively. As depicted, the IP table 532 for the first OS 530 defines a number of network interfaces at 910, and a routing rule at 920. IP table 552 for the second OS 550 also defines a number of network interfaces at 930, and a set of routing rules at 940.
In various embodiments described above, one or more of the operating systems may be notified when an external network interface 534 has been made available for sharing with second OS 550 or other operating systems by first OS 530. Notifications may be used in creating routing rules for IP tables in various operating systems. In some embodiments, the first OS 530 sends a notification to second OS 550 by way of inter-OS communication 580.
Inter-OS communication may occur in a number of different forms. FIG. 10 is a block diagram of an example depiction of communication between containers on an embedded device. In FIG. 10, virtual memory 1100 is segregated into user space 1120 and kernel space 1140. As described above, kernel space 1140 is reserved for specific system operations associated with kernel 1160, which houses core programs 1180. A number of containers 1200, 1220, 1240, 1260 are provided in user space 1120.
In the example embodiment of FIG. 10, communication between a first process 1280 (e.g. a first operating system 530 or an application running in first operating system 530) in a first container 1200 and a second process 1300 in a second container 1220 is performed via a buffer process 1320. The buffer process 1320 controls the communication between the first process 1280 and the second process 1300. In some embodiments, communication between first process 1280 and second process 1300 is contingent upon a determination that communication between the first process 1280 and second process 1300 is authorized. Such a determination may be based on the entities attempting to communicate (e.g. an authorization for communication between the two containers 1200 and 1220) or based on the properties of the message being communicated (e.g. a message relating to the availability of first external network interface 534 may be authorized to be communicated between containers to different operating systems).
In some embodiments, a buffer process 1320 determines whether the communication is authorized. In some embodiments, an authorization process separate from the buffer process 1320 determines whether the communication is authorized, and provides an indication to buffer process 1320 as to whether the communication is authorized. In some embodiments, the determination is made based on authorization data 1340 accessible to the buffer process 1320. The authorization data 1340 may define restrictions on communications. Such restrictions can specify combinations of processes and/or containers which are allowed to communicate. Such restrictions can also specify particular types of communications which are allowed for specific process or container combinations.
A person skilled in the art should appreciate that various communication paths are possible between processes and containers shown in FIG. 10. For example, process 1300 can communicate a message to two processes 1360, 1380 running in container 1240 via buffer process 1320. Process 1300 can communicate a message to one process in container 1240 and to one process 1280 in container 1200. Process 1280 can communicate a message to process 1400 via buffer 1320, and then via process 1300. As can be understood from the preceding examples, communication via the buffer process 1320 can be authorized for selected combinations of processes.
An example method of performing inter-OS communication between a first (source) process 1280 (e.g. first OS 530) and a second (destination) process 1300 (e.g. second OS 550) begins with the first process 1280 sending a message to the buffer process 1320. The buffer process may examine the source and destination processes as well as the contents of the communication to determine whether the communication is authorized. If the buffer process 1320 determines that the communication is authorized, the communication is delivered to the destination process 1300. If the buffer process determines that the communication is not authorized, the communication is not delivered to the destination process. In some embodiments, different processes or containers may have different privileges for inter-OS communication. For example, authorization may be operating system-based, in which case all communications may be allowed between specific combinations of containers or operating systems. Alternatively, authorization can be process- or application-based, in which communications can be allowed between specific combinations of processes.
Inter-OS communication 580 may be used to notify an operating system that an external network interface 534 and/or shared network interface 536 has been activated or otherwise become available. For example, in the example of FIG. 6A, when external network interface 534 has been established and made available, control client 531 can send an inter-OS communication to control client 551 using inter-OS communication 580. The communication may include, for example, any one or more of an identifier and corresponding IP or MAC addresses for one or more network interfaces. If the communication between the two operating systems is authorized, the recipient operating system can use the contents of the communication to update IP tables and/or permissions within the control client to reflect the current state of available connections and routing configurations.
FIG. 11 is a flow chart of an example method of sharing a network interface between virtualized operating systems in an embedded device 100. At 1510, the host operating system 510 provides a network bridge 590 which is available to at least two containers. In some embodiments, the network bridge is initialized upon startup of the embedded device. At 1520, a first operating system 530 running in a first container of the embedded device connects a first shared network interface 536 to the network bridge 590. At 1530, a second operating system 550 running in a second container of the embedded device connects a second shared network interface 556 to the network bridge 590. In some embodiments, one or more of the operating systems 530, 550 creates a shared network interface upon startup.
At 1540, a first external network interface 534 in first operating system 530 is linked to the first shared network interface 536 by control client 531. In some embodiments, the first external network interface 534 may be a physical (e.g. ethernet, WiFi, LTE) interface or a virtual interface (e.g. VPN connection). In some embodiments, linking first external network interface to first shared network interface 536 comprises creating one or more rules in an IP table 532 which controls the routing of data packets in first operating system 530.
At 1550, the second operating system 550 is notified that the external network interface 534 is active and has been made available. In some embodiments, the notifications are made using inter-OS communication, as described above. In some embodiments, other operating systems including or in addition to second operating system 550 are notified that the external network interface 534 has been activated and made available.
At 1560, the first external network interface 534 is shared with the second operating system 550 and can transmit and/or receive data packets routed via shared network interface 556. In some embodiments, the first external network interface 534 is shared with one or more of second operating system 550 and any other operating systems which are executing on embedded device 100.
In some embodiments, sharing a first external network interface 534 comprises configuring one or more IP tables 532, 552 to define rules for routing data packets to the first external network interface 534. In some embodiments, the IP tables 532, 552 may be configured so as to make the first external network interface 534 the default route for network traffic for the second operating system 550. Alternatively, the first external network interface 534 may be set as the default route for network traffic for one or more additional operating systems in addition to second operating system 550.
In some embodiments, sharing the first external network interface 534 comprises setting permissions for access to the first external network interface 534 on an application-by-application basis. For example, the control client 551 in the second operating system 550 may be configured to block network traffic from a particular application (e.g. Facebook) from being forwarded to the shared network interface 556, whereas the control client 551 may be configured to allow network traffic from a different application (e.g. an email application) to be routed to the shared network interface 556 and ultimately to the first external network interface 534.
In some embodiments, the method further comprises sharing additional external network interfaces 534 with other operating systems. For example, in some embodiments, second OS 550 may have access to an LTE interface 534 b to which first OS 530 does not have access. In some embodiments, the LTE interface 534 b may be shared with first OS 530 using similar techniques as those described above.
The scope of the present application is not intended to be limited to the particular embodiments of the process, machine, manufacture, composition of matter, means, methods and steps described in the specification. As one of ordinary skill in the art will readily appreciate from the disclosure of the present invention, processes, machines, manufactures, compositions of matter, means, methods, or steps, presently existing or later to be developed, that perform substantially the same function or achieve substantially the same result as the corresponding embodiments described herein may be utilized. Accordingly, the appended claims are intended to include within their scope such processes, machines, manufactures, compositions of matter, means, methods, or steps.
As can be understood, the detailed embodiments described above and illustrated are intended to be examples only. Variations, alternative configurations, alternative components and modifications may be made to these example embodiments. The invention is defined by the claims.

Claims (20)

What is claimed is:
1. A method comprising:
in a first container managed by a host operating system running on an embedded device, running a first operating system and connecting a first shared network interface provided by the host operating system with a network bridge provided by the host operating system, the network bridge configured to route data packets between the first shared network interface and a second shared network interface connected to the network bridge, the second shared network interface configured to route data packets between the host operating system and a second operating system running in a second container managed by the host operating system;
linking, by a first control client included in the first operating system, a first external network interface to the first shared network interface to route data packets between the first external network interface and the first shared network interface, the first external network interface configured to route the data packets between a network or device external to the embedded device and the first shared network interface, the first external network interface being inaccessible by the second operating system; and
sharing, by the first control client, the first external network interface with the second shared network interface via the network bridge to route data packets between the second shared network interface and the first external network interface.
2. The method of claim 1, wherein the first control client comprises an Internet Protocol (IP) table configured to route the data packets between the first external network interface and the second shared network interface.
3. The method of claim 1, further comprising:
linking, by a second control client included in the second operating system, a second external network interface to the second shared network interface to route data packets between the second external network interface and the second shared network interface; and
sharing, by the second control client, the second external network interface with the first shared network interface via the network bridge to route data packets between the first shared network interface and the second external network interface.
4. The method of claim 1, further comprising:
in a third container managed by the host operating system, running a third operating system and connecting a third shared network interface provided by the host operating system with the network bridge, the network bridge being configured to route data packets between the third shared network interface and the first shared network interface connected to the network bridge; and
sharing, by a third control client included in the third operating system, the first external network interface with the third shared network interface via the network bridge to route data packets between the third shared network interface and the first external network interface.
5. The method of claim 3, further comprising:
in a third container managed by the host operating system, running a third operating system and connecting a third shared network interface provided by the host operating system with the network bridge, the network bridge being configured to route data packets between the third shared network interface and the first and second shared network interfaces connected to the network bridge;
sharing, by a third control client included in the third operating system, the first external network interface with the third shared network interface via the network bridge to route data packets between the third shared network interface and the first external network interface; and
sharing, by the second control client included in the second operating system, the second external network interface with the third shared network interface via the network bridge to route data packets between the third shared network interface and the second external network interface.
6. The method of claim 2, wherein sharing the first external network interface with the second shared network interface comprises:
sharing the first external network interface with a number of authorized applications running in the second container, the authorized applications each having an entry in the IP table, wherein the number of authorized applications is less than a total number of applications running in the second container.
7. The method of claim 1, wherein the first operating system includes a driver for the first external network interface, and wherein the second operating system lacks the driver for the first external network interface.
8. The method of claim 1, wherein the first external network interface is one of a hardware-based physical network interface and a virtual network interface.
9. The method of claim 3, wherein the second external network interface is one of a hardware-based physical network interface and a virtual network interface.
10. The method of claim 1, further comprising sending, by the first control client, a notification to a second control client included in the second operating system to notify the second control client that the first external network interface is available for sharing with the second operating system.
11. The method of claim 10, wherein the notification is an inter-OS communication and includes an identifier and an address for the first external network interface.
12. An embedded device, comprising:
a processor;
a memory containing computer-readable instructions for execution by said processor, said instructions, when executed by said processor, causing the processor to:
run a host operating system;
in a first container managed by the host operating system, run a first operating system and connect a first shared network interface provided by the host operating system with a network bridge provided by the host operating system, the network bridge configured to route data packets between the first shared network interface and a second shared network interface connected to the network bridge, the second shared network interface configured to route data packets between the host operating system and a second operating system running in a second container managed by the host operating system;
link, by a first control client included in the first operating system, a first external network interface to the first shared network interface to route data packets between the first external network interface and the first shared network interface, the first external network interface configured to route the data packets between a network or device external to the embedded device and the first shared network interface, the first external network interface being inaccessible by the second operating system; and
share, by the first control client, the first external network interface with the second shared network interface via the network bridge to route data packets between the second shared network interface and the first external network interface.
13. The embedded device of claim 12, wherein the first control client comprises an Internet Protocol (IP) table configured to route the data packets between the first external network interface and the second shared network interface.
14. The embedded device of claim 12, wherein the memory further contains instructions to:
link, by a second control client included in the second operating system, a second external network interface to the second shared network interface to route data packets between the second external network interface and the second shared network interface; and
share, by the second control client, the second external network interface with the first shared network interface via the network bridge to route data packets between the first shared network interface and the second external network interface.
15. The embedded device of claim 12, wherein the memory further contains instructions to:
in a third container managed by the host operating system, run a third operating system and connect a third shared network interface provided by the host operating system with the network bridge, the network bridge being configured to route data packets between the third shared network interface and the first shared network interface connected to the network bridge; and
share, by a third control client included in the third operating system, the first external network interface with the third shared network interface via the network bridge to route data packets between the third shared network interface and the first external network interface.
16. The embedded device of claim 14, wherein the memory further contains instructions to:
in a third container managed by the host operating system, run a third operating system and connect a third shared network interface provided by the host operating system with the network bridge, the network bridge being configured to route data packets between the third shared network interface and the first and second shared network interfaces connected to the network bridge;
share, by a third control client included in the third operating system, the first external network interface with the third shared network interface via the network bridge to route data packets between the third shared network interface and the first external network interface; and
share, by the second control client included in the second operating system, the second external network interface with the third shared network interface via the network bridge to route data packets between the third shared network interface and the second external network interface.
17. The embedded device of claim 13, wherein sharing the first external network interface with the second shared network interface comprises sharing the first external network interface with a number of authorized applications running in the second container, each of the authorized applications having an entry in the IP table, wherein the number of authorized applications is less than a total number of applications running in the second container.
18. The embedded device of claim 12, wherein the first operating system includes a driver for the first external network interface, and wherein the second operating system lacks the driver for the first external network interface.
19. The embedded device of claim 12, wherein the first external network interface is one of a hardware-based physical network interface and a virtual network interface.
20. The embedded device of claim 12, wherein the memory further contains instructions to send, by the first control client, a notification to a second control client included in the second operating system to notify the second control client that the first external network interface is available for sharing with the second operating system.
US15/642,476 2017-07-06 2017-07-06 Systems and methods for sharing network interfaces between containers in an embedded computing device Active 2037-09-04 US10505758B2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
US15/642,476 US10505758B2 (en) 2017-07-06 2017-07-06 Systems and methods for sharing network interfaces between containers in an embedded computing device
PCT/CN2017/106894 WO2019006912A1 (en) 2017-07-06 2017-10-19 Systems and methods for sharing network interfaces betweencontainers in an embedded computing device
CN201780093446.5A CN110945479B (en) 2017-07-06 2017-10-19 System and method for sharing network interfaces between containers in an embedded computing device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US15/642,476 US10505758B2 (en) 2017-07-06 2017-07-06 Systems and methods for sharing network interfaces between containers in an embedded computing device

Publications (2)

Publication Number Publication Date
US20190013963A1 US20190013963A1 (en) 2019-01-10
US10505758B2 true US10505758B2 (en) 2019-12-10

Family

ID=64902865

Family Applications (1)

Application Number Title Priority Date Filing Date
US15/642,476 Active 2037-09-04 US10505758B2 (en) 2017-07-06 2017-07-06 Systems and methods for sharing network interfaces between containers in an embedded computing device

Country Status (3)

Country Link
US (1) US10505758B2 (en)
CN (1) CN110945479B (en)
WO (1) WO2019006912A1 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108089928B (en) * 2016-11-22 2022-01-14 华为技术有限公司 Terminal control method and device
US11099911B1 (en) 2019-07-01 2021-08-24 Northrop Grumman Systems Corporation Systems and methods for inter-partition communication
US11706162B2 (en) * 2019-10-21 2023-07-18 Sap Se Dynamic, distributed, and scalable single endpoint solution for a service in cloud platform

Citations (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050039180A1 (en) 2003-08-11 2005-02-17 Scalemp Inc. Cluster-based operating system-agnostic virtual computing system
US20070033260A1 (en) 2003-07-30 2007-02-08 Sa, Jaluna Multiple operating systems sharing a processor and a network interface
US20080043765A1 (en) * 2006-07-20 2008-02-21 Sun Microsystems, Inc. Method and system for automatically reflecting hardware resource allocation modifications
US20080123676A1 (en) * 2006-08-28 2008-05-29 Cummings Gregory D Shared input-output device
US7461148B1 (en) * 2001-02-16 2008-12-02 Swsoft Holdings, Ltd. Virtual private server with isolation of system components
US7478173B1 (en) * 2003-12-18 2009-01-13 Wmware, Inc. Method and system for sharing a network connection in a virtual computer system
CN101399830A (en) 2007-09-29 2009-04-01 联想(北京)有限公司 Virtual machine system and method for sharing Ethernet point to point protocol link
US20090217260A1 (en) * 2008-02-26 2009-08-27 Alexander Gebhart Automated virtual appliance sizing
US20110314469A1 (en) 2010-06-21 2011-12-22 Yi Qian Method for network interface sharing among multiple virtual machines
US8194667B2 (en) * 2007-03-30 2012-06-05 Oracle America, Inc. Method and system for inheritance of network interface card capabilities
US20150195137A1 (en) * 2014-01-06 2015-07-09 Lenovo Enterprise Solutions (Singapore) Pte. Ltd. Virtual group policy based filtering within an overlay network
US20150254088A1 (en) * 2014-03-08 2015-09-10 Datawise Systems, Inc. Methods and systems for converged networking and storage
US20160182315A1 (en) * 2014-12-22 2016-06-23 Rovio Entertainment Ltd. Container manager
US20160203008A1 (en) * 2014-05-15 2016-07-14 Nutanix, Inc. Mechanism for performing rolling updates with data unavailability check in a networked virtualization environment for storage management
US20160335107A1 (en) * 2015-05-17 2016-11-17 Nicira, Inc. Logical processing for containers
US20170052807A1 (en) * 2014-02-20 2017-02-23 Telefonaktiebolaget Lm Ericsson (Publ) Methods, apparatuses, and computer program products for deploying and managing software containers
US20170180249A1 (en) * 2015-12-16 2017-06-22 Nicira, Inc. Forwarding element implementation for containers
US20170180250A1 (en) * 2015-12-16 2017-06-22 Nicira, Inc. Packet communication between container data compute nodes and a managed forwarding element
US20170353433A1 (en) * 2015-06-26 2017-12-07 Nicira, Inc. Traffic handling for containers in a virtualized computing environment
US9886300B2 (en) * 2015-03-24 2018-02-06 Fujitsu Limited Information processing system, managing device, and computer readable medium
US20180063201A1 (en) * 2016-08-25 2018-03-01 Tianhu Zhang Device and method for managing a communication interface of a communication device
US10027351B1 (en) * 2015-12-08 2018-07-17 Amazon Technologies, Inc. Virtualized hardware support for mobile devices
US10073691B2 (en) * 2016-08-23 2018-09-11 Cisco Technology, Inc. Containerized upgrade in operating system level virtualization
US10078527B2 (en) * 2015-11-01 2018-09-18 Nicira, Inc. Securing a managed forwarding element that operates within a data compute node

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103259735B (en) * 2013-05-15 2016-05-11 重庆邮电大学 A kind of communication means of the programmable virtual router based on NetFPGA
US9503321B2 (en) * 2014-03-21 2016-11-22 Nicira, Inc. Dynamic routing for logical routers
US10069646B2 (en) * 2015-12-02 2018-09-04 Nicira, Inc. Distribution of tunnel endpoint mapping information

Patent Citations (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7461148B1 (en) * 2001-02-16 2008-12-02 Swsoft Holdings, Ltd. Virtual private server with isolation of system components
US20070033260A1 (en) 2003-07-30 2007-02-08 Sa, Jaluna Multiple operating systems sharing a processor and a network interface
US20050039180A1 (en) 2003-08-11 2005-02-17 Scalemp Inc. Cluster-based operating system-agnostic virtual computing system
US7478173B1 (en) * 2003-12-18 2009-01-13 Wmware, Inc. Method and system for sharing a network connection in a virtual computer system
US20080043765A1 (en) * 2006-07-20 2008-02-21 Sun Microsystems, Inc. Method and system for automatically reflecting hardware resource allocation modifications
US20080123676A1 (en) * 2006-08-28 2008-05-29 Cummings Gregory D Shared input-output device
US8194667B2 (en) * 2007-03-30 2012-06-05 Oracle America, Inc. Method and system for inheritance of network interface card capabilities
CN101399830A (en) 2007-09-29 2009-04-01 联想(北京)有限公司 Virtual machine system and method for sharing Ethernet point to point protocol link
US20090217260A1 (en) * 2008-02-26 2009-08-27 Alexander Gebhart Automated virtual appliance sizing
US20110314469A1 (en) 2010-06-21 2011-12-22 Yi Qian Method for network interface sharing among multiple virtual machines
US20150195137A1 (en) * 2014-01-06 2015-07-09 Lenovo Enterprise Solutions (Singapore) Pte. Ltd. Virtual group policy based filtering within an overlay network
US20170052807A1 (en) * 2014-02-20 2017-02-23 Telefonaktiebolaget Lm Ericsson (Publ) Methods, apparatuses, and computer program products for deploying and managing software containers
US20150254088A1 (en) * 2014-03-08 2015-09-10 Datawise Systems, Inc. Methods and systems for converged networking and storage
US20160203008A1 (en) * 2014-05-15 2016-07-14 Nutanix, Inc. Mechanism for performing rolling updates with data unavailability check in a networked virtualization environment for storage management
US20160182315A1 (en) * 2014-12-22 2016-06-23 Rovio Entertainment Ltd. Container manager
US9886300B2 (en) * 2015-03-24 2018-02-06 Fujitsu Limited Information processing system, managing device, and computer readable medium
US20160335107A1 (en) * 2015-05-17 2016-11-17 Nicira, Inc. Logical processing for containers
US20170353433A1 (en) * 2015-06-26 2017-12-07 Nicira, Inc. Traffic handling for containers in a virtualized computing environment
US10078527B2 (en) * 2015-11-01 2018-09-18 Nicira, Inc. Securing a managed forwarding element that operates within a data compute node
US10027351B1 (en) * 2015-12-08 2018-07-17 Amazon Technologies, Inc. Virtualized hardware support for mobile devices
US20170180249A1 (en) * 2015-12-16 2017-06-22 Nicira, Inc. Forwarding element implementation for containers
US20170180250A1 (en) * 2015-12-16 2017-06-22 Nicira, Inc. Packet communication between container data compute nodes and a managed forwarding element
US10073691B2 (en) * 2016-08-23 2018-09-11 Cisco Technology, Inc. Containerized upgrade in operating system level virtualization
US20180063201A1 (en) * 2016-08-25 2018-03-01 Tianhu Zhang Device and method for managing a communication interface of a communication device

Also Published As

Publication number Publication date
CN110945479B (en) 2022-10-18
CN110945479A (en) 2020-03-31
WO2019006912A1 (en) 2019-01-10
US20190013963A1 (en) 2019-01-10

Similar Documents

Publication Publication Date Title
US11363067B2 (en) Distribution and management of services in virtual environments
EP3525423B1 (en) Packet processing method in cloud computing system, host, and system
US10437626B2 (en) System and method for isolated virtual image and appliance communication within a cloud environment
EP3343881B1 (en) Packet processing method in cloud computing system, host, and system
US20220263802A1 (en) Remote session based micro-segmentation
JP2019528005A (en) Method, apparatus, and system for a virtual machine to access a physical server in a cloud computing system
CN109526249B (en) Device and method for managing communication interface of communication device
EP4221103A1 (en) Public cloud network configuration method, and related device
CN103229489B (en) The collocation method of virtual machine control strategy and switch
US10505758B2 (en) Systems and methods for sharing network interfaces between containers in an embedded computing device
US9866525B2 (en) Source-destination network address translation (SDNAT) proxy and method thereof
US10693785B2 (en) Method and system for forwarding data, virtual load balancer, and readable storage medium
EP3684030B1 (en) Data transmission method, server, unloading card, and storage medium
EP4432080A1 (en) Virtual machine (vm) migration with smart network interface cards (nics)

Legal Events

Date Code Title Description
AS Assignment

Owner name: HUAWEI TECHNOLOGIES CO., LTD., CHINA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:PAPO, ALEKSANDAR;ALMALKI, NAZIH;SIGNING DATES FROM 20170704 TO 20170705;REEL/FRAME:042920/0996

STPP Information on status: patent application and granting procedure in general

Free format text: NON FINAL ACTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER

STPP Information on status: patent application and granting procedure in general

Free format text: NOTICE OF ALLOWANCE MAILED -- APPLICATION RECEIVED IN OFFICE OF PUBLICATIONS

STPP Information on status: patent application and granting procedure in general

Free format text: PUBLICATIONS -- ISSUE FEE PAYMENT VERIFIED

STCF Information on status: patent grant

Free format text: PATENTED CASE

MAFP Maintenance fee payment

Free format text: PAYMENT OF MAINTENANCE FEE, 4TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1551); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Year of fee payment: 4